Novell iPrint Client < 5.72 nipplib.dll GetDriverSettings Function Buffer Overflow
High Nessus Plugin ID 56682
SynopsisThe remote host contains an application that is affected by a buffer overflow vulnerability.
DescriptionThe nipplib.dll component included with the installed version of Novell iPrint Client blindly copies user input provided as a parameter to the 'GetDriverSettings' method into a fixed-length buffer on the stack. By tricking the user into opening a specially crafted file, an attacker can leverage this issue to overflow a buffer and execute arbitrary code in the context of the affected application.
SolutionUpgrade to Novell iPrint Client 5.72 or later.